Vulnerabilidades em unitecms
29 resultadosCVE-2024-2662HIGHUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.102 - Authenticated (Admin+) Command InjectionEPSS 1.7%CVE-2023-6925HIGHUnlimited Addons for WPBakery Page Builder <= 1.0.42 - Authenticated (Editor+) Arbitrary File UploadEPSS 1.5%CVE-2023-3295HIGHUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.66 - Authenticated (Contributor+) Arbitrary File UploadEPSS 1.3%CVE-2023-6743HIGHUnlimited Elements for Elementor <= 1.5.89 - Authenticated(Contributor+) Remote Code Execution via template importEPSS 1.3%CVE-2024-6315HIGHBlox Page Builder <= 1.0.65 - Authenticated (Contributor+) Arbitrary File UploadEPSS 1.0%CVE-2026-4659HIGHUnlimited Elements For Elementor <= 2.0.6 - Authenticated (Contributor+) Arbitrary File Read via Path Traversal in Repeater JSON/CSV URL with Path TraversalEPSS 0.9%CVE-2024-3055HIGHUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.102 - Authenticated (Contributor+) SQL InjectionEPSS 0.8%CVE-2024-1710HIGHAddon Library <= 1.3.76 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.7%CVE-2024-6169MEDIUMUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'username'EPSS 0.5%CVE-2024-5329HIGHUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.109 - Authenticated (Contributor+) Blind SQL Injection via data[addonID] ParameterEPSS 0.5%CVE-2024-6166HIGHUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Time-Based SQL InjectionEPSS 0.5%CVE-2026-5486MEDIUMUnlimited Elements For Elementor <= 2.0.7 - Authenticated (Contributor+) SQL Injection via 'filter_search' ParameterEPSS 0.5%CVE-2024-6170MEDIUMUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'email'EPSS 0.5%CVE-2025-14476HIGHDoubly <= 1.0.46 - Authenticated (Subscriber+) PHP Object Injection via ZIP File ImportEPSS 0.5%CVE-2024-4779HIGHUnlimited Elements for Elementor <= 1.5.107 - Authenticated (Contributor+) SQL Injection via data[post_ids][0]EPSS 0.5%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2024-3547MEDIUMUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.102 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2026-2724HIGHUnlimited Elements For Elementor <= 2.0.5 - Unauthenticated Stored Cross-Site Scripting via Form Entry FieldsEPSS 0.3%CVE-2024-0367MEDIUMUnlimited Elements For Elementor <= 1.5.96 - Authenticated (Contributor+) Stored Cross-Site Scripting via Widget LinkEPSS 0.3%CVE-2024-10784MEDIUMUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.126 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%